Effective Date: 15/12/2025
Last Updated: 15/12/2025

This Privacy Policy explains how we collect, use, share, store, and protect personal information when you visit https://www.digitalzoo.com (the “Website”) or use our services.

We operate internationally through two entities:

• Digital Zoo LLC (United States) – primary contracting and billing entity for online payments and Stripe processing

• Digital Zoo (Pty) Ltd (South Africa) – operational/delivery entity for service fulfilment and local operations

In this policy, “Digital Zoo”, “we”, “us”, or “our” refers to one or both entities depending on the context of the service and where processing occurs.

1. Laws and Principles We Follow

We are committed to compliance with applicable privacy laws, including:

• POPIA (Protection of Personal Information Act, South Africa)

• GDPR (General Data Protection Regulation, EU/EEA) where applicable

• Other applicable data protection laws depending on where you are located

We follow key privacy principles: lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, security, and retention limitation.

2. Responsible Parties

2.1 Primary contracting and payment entity

Digital Zoo LLC
1209 Mountain Road Pl NE, Ste R
Albuquerque, NM 87110, United States
EIN: 41-3003475
Email: support@digitalzoo.com

2.2 South African operational entity

Digital Zoo (Pty) Ltd
Registered Address: 13 Sandolien Street, Rhino Ridge, The Wilds, Pretorius Park X15, Pretoria, Gauteng, 0186, South Africa
Registration Number: 2015/022298/07
VAT Number (if applicable): 4530280488
Email: support@digitalzoo.com

3. What Personal Information We Collect

We may collect personal information in the following ways:

3.1 Information you provide directly

• Full name

• Email address

• Phone number

• Company name and role (if applicable)

• Project details and communications (emails, messages, briefs, feedback)

• Billing details (such as invoicing information)

• Any other information you choose to submit via forms or communication

3.2 Information we collect automatically

When you use the Website, we may automatically collect:

• IP address

• Browser type and version

• Device type and operating system

• Pages visited, time spent, and referral URLs

• General location data (approximate, derived from IP)

3.3 Information from third parties

We may receive information from third parties where relevant, such as:

• Payment confirmations and transaction metadata from payment processors (e.g., Stripe)

• Analytics and advertising platforms (only where enabled and configured)

4. Why We Collect and Use Personal Information

We use personal information to:

• Respond to enquiries and communicate with you

• Provide, manage, and deliver services

• Prepare proposals, agreements, and project deliverables

• Manage billing, payments, subscriptions, and support

• Improve our Website and services

• Maintain security, prevent fraud, and protect our systems

• Comply with legal and regulatory obligations

5. Legal Basis for Processing (GDPR)

Where GDPR applies, we process personal information under one or more of these lawful bases:

• Consent (e.g., marketing communications or optional cookies)

• Contract (necessary to provide services you request, or to take steps before entering a contract)

• Legal obligation (e.g., tax, accounting, compliance)

• Legitimate interests (e.g., improving services, securing systems, preventing fraud), provided your rights do not override these interests

You may withdraw consent at any time where processing is based on consent.

6. POPIA Disclosures (South Africa)

Where POPIA applies:

• Providing certain personal information may be necessary to provide services (e.g., contact details for communication, billing information for invoicing).

• If you choose not to provide required information, we may be unable to deliver the requested service.

• You have rights as a data subject (see Section 11).

7. Payments (Stripe)

Payments may be processed via Stripe (or other payment processors where applicable). We do not store full card details on our Website or systems. Stripe processes payment information according to its own privacy and security standards.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Ensure the Website functions correctly

• Understand website usage and performance

• Improve user experience

Cookie consent

Where required by law (including GDPR and POPIA-related best practice), we will obtain consent for non-essential cookies via a cookie consent banner and settings tool.

Important: If your cookie banner is not yet live, you should implement it as soon as possible. Until then, you should limit cookies to strictly necessary ones (or configure analytics to avoid non-essential tracking until consent is given).

Cookie types (typical categories)

Below are typical cookie categories we may use:

You can also control cookies through your browser settings. Disabling cookies may affect website functionality.

9. Sharing Personal Information

We do not sell your personal information.

We may share personal information with trusted third parties where necessary to operate our business and deliver services, including:

• Payment processors (e.g., Stripe)

• Hosting providers and technical infrastructure suppliers

• Email and communication services

• Analytics and advertising platforms (only where configured/enabled)

• Professional advisers (legal, accounting, compliance)

• Authorities or regulators where required by law

We require service providers to handle personal information securely and only for authorised purposes.

10. International Transfers

Because we operate internationally, your personal information may be processed in South Africa, the United States, and other countries where our service providers operate.

Where GDPR applies, we implement appropriate safeguards for international transfers (such as contractual protections and security measures) as required.

11. Your Rights

Depending on your location and applicable law (GDPR/POPIA), you may have the right to:

• Request access to your personal information

• Request correction of inaccurate data

• Request deletion (where applicable)

• Object to processing (including marketing)

• Restrict processing (where applicable)

• Withdraw consent (where processing is based on consent)

• Request portability (GDPR where applicable)

• Lodge a complaint with a regulator

To exercise your rights, contact us using the details in Section 13.

12. Data Retention

We retain personal information only as long as necessary for:

• Delivering services

• Legitimate business purposes (e.g., record-keeping)

• Legal, tax, accounting, and compliance requirements

• Dispute resolution and enforcement of agreements

When no longer required, we securely delete or anonymise data where appropriate.

13. Security Measures

We use reasonable technical and organisational safeguards designed to protect personal information against unauthorised access, loss, misuse, or disclosure.

No method of transmission or storage is 100% secure, but we continuously improve security practices and access controls.

14. Children’s Privacy

Our services and Website are not intended for children, and we do not knowingly collect personal information from children without appropriate consent where required by law.

15. Third-Party Links

The Website may contain links to third-party websites. We are not responsible for their privacy practices. Please review the privacy policies of any third-party sites you visit.

16. Changes to This Policy

We may update this Privacy Policy from time to time. Any updates will be posted on this page with an updated effective/last updated date. Continued use of the Website constitutes acceptance of the revised policy.

17. POPIA Information Officer and Contact

For POPIA/GDPR questions, requests, or complaints, contact:

Information Officer / Privacy Contact
Email: support@digitalzoo.com
Phone (optional): +27 12 743 6555

You may also contact the South African Information Regulator (POPIA) via its official channels.